This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4115 Views
  • 0 replies
  • 0 Likes

HA Failover in a Multi Vsys environment

I am currently setting up HA in a multi vsys environment, cant seem to find any documentation on the subject. Currently I have a HA pair of 5050's with 3 vsys, HA has been setup but how do I ensure when vsys1 fails it is the only system that fails over and not vsys2 and 3? HA has been setup with data link and control link and I am monitoring the...

PA-7050 HSCI Ports

I am in the process of a cluster (active/passive) design for two PA-7050 chassis. We have two Datacenters in two different locations. The DC's are connected through a Layer 2 connection.Can I use the HA-2 QSFP+ Interfaces on the SMC to interconnect the two Chassis ?CheersRoland

gafrol by L4 Transporter
  • 6789 Views
  • 4 replies
  • 0 Likes

No internet issue on one sub interface but works fine on other sub interface

I am having a simple setup.I have created a new virtual router.Added 2 sub interfaces. ( 1/1.320 and 1/1.340)Added default route.Can not ping ISP next hop. No block on logs. But Bytes received 0.I have connected my other ASA router to the switch which is connecting ISP everything works fine. Then I have made the same setup with e ½ sub interface...

internet.PNG

Palo Alto updates mails

Hi, My customer recently had problems with Palo alto apps&threats updates. They had SMB connections being allowed but with the last content update these connections were cataloged like "SMB brute force" and connectios were dropped. The best way would be to install manually these apps&threats updates, right?? We receive the palo alto upda...

Resolved! HA not synchronized after commit from Panorama

I tried it twice, same result every time. I commited change from Panorama to Active firewall and noticed 'Not synchronized' message in Dashboard HA tab. I can't even sync Active with Passive manually. I am using 5060 with 7.1.2

niuk by L3 Networker
  • 16014 Views
  • 9 replies
  • 0 Likes

LACP in HA issue

I have a pair of PAN 5060 (v.7.1.2) firewalls in HA Passive/Active connected with LACP to pair of core Nexus 9000 switches. From time to time (every hour or few) connectivity to active firewall is faling (can't ping firewall LACP L3 interface ip address from core) for a few sec. When it happens I noticed presence of MAC adddress of firewall on ...

niuk by L3 Networker
  • 5822 Views
  • 6 replies
  • 0 Likes

Resolved! VPN between 3 sites

VPN Site to SiteI have communication between site A and site B or site A and Site C, but I have not communication between B y C through ASite A (headquarters )Site B (Windows Azure)Site C (Bank)The required communication is the site B to contact C through A.Can you help me please

Updates to firewalls from Panorama show failed, but seem to install properly

When I try to push updates to our firewalls from Panorama, it reports that the job failed, but the jobs seem to complete anyway. This happens when pushing dynamic updates, and I had it happen again to a software upgrade on a PA-200 last night. When I installed the most recent Apps & Threat update, it showed failure on over 90% of our firew...

How does ACC work?

Hello, I tried to find a technote to explain how does ACC work, please help me to understand, 1. Where does ACC collect the data from? 2. Is traffic logging (log at session end) required for ACC to work?3. Is ACC real time (with 15 minute delay)? How does it deal with long live active sessions with very low bit rate ? Thanks, E

FQDN address objects not resolving

Hi guys, I've seen a few bugs in the past regarding FQDNs not resolving. Since an upgrade to 7.1.2 the DNS addresses aren't resolving properly and thus aren't hitting the correct policy I have the address objects on. This issue resolves itself when I force an FQDN refresh using "request system fqdn refresh". But then the issue re-appears. Is a...

Content 596 Update - Seeking more details on customer reported problems

Can anyone provide details on some of the problems that were experienced after applying content update 596?We spent all night troubleshooting a problem where our PA3020 was impacting TCP\9100 traffic. The problem started soon after the update. We would see the TCP handshake between a print server and printer occur, some data would be sent, then ...

btrotter by L1 Bithead
  • 3957 Views
  • 5 replies
  • 0 Likes

Resolved! Help setting up PA200 with a 4g modem running in bridge mode

Hi Have tested few different modems and i cannot seem to get then to work propely.heres my setup and i hope someone can point me to the right direction1.Dovado router with a usb 4g usb dongle ( running in bridge mode, providing a external ip when usin a computer )2.PA200 setted up as a firewall acting as a dchp server. (works perfectly when plug...

File Blocking Cant recognize .txt files

Hello to all, I am trying to find a way for Palo Alto to recognize some how *.txt files so I can be alert when it pass my Firewall. Any ideas how I can make this happen? I have search on the extension list but the .txt is not included some where. Thank you.

  • 24333 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks